Re: Virtual Agent + IIS and HTTPS

[BradRemedy]

Thanks Jason

Will check that out.

Cheers
Brad

On Tue, Aug 23, 2016 at 11:05 PM Jason Miller 
wrote:

> **
> We had a SSL issue with VA 7.0 or 7.1 (before BMC bought it). I am not
> sure how much if any of the code is the same these days?
>
> The Java code within VA was very picky about certificates and having a
> completely valid certificate chain. Our configuration is Apache web server
> (httpd) which is a proxy to Tomcat using AJP.
>
> As a refresher I just looked at the document I created for my team on the
> issue:
>
> Issue:
> CNS events updates are not being received and chat DVF fields are not
> updating with new entries when CNS web server is using Extended Validation
> certificates for SSL
>
> Cause:
> Apache web server did not have the Intermediate CA Certificate chain
> configured.  Java (used by CNS) could not validate the certificate chain
> therefore failing to make the connection.
>
> Resolution Summary:
> Download Intermediate CA Certificates from VeriSign and configure Apache
> utilize the certificate file.
>
>
> On Tue, Aug 23, 2016 at 7:02 AM Stone, Brian  wrote:
>
>> If you are running a version older than 9.x there was an issue with Https
>> and self signed certs.
>>
>> 
>> From: Action Request System discussion list(ARSList) [arslist@ARSLIST.ORG]
>> on behalf of BradRemedy [bradrem...@gmail.com]
>> Sent: Tuesday, August 23, 2016 9:17 AM
>> To: arslist@ARSLIST.ORG
>> Subject: Virtual Agent + IIS and HTTPS
>>
>> **
>> Hi
>>
>> Need some urgent help please.
>>
>> Has anyone been successful in getting Virtual agent to work with HTTPS ?
>>
>> Our mid tier server is running IIS and Apache (standard configuration)
>> with a SSL cert binded to HTTPS. We have installed Virtual Agent and
>> specified HTTPS as the protocol with port 443. The installation completed
>> with no errors however, when we try to access Virtual agent, we get a error
>> message.
>>
>> For testing, I am using the URL we are using is "https://
>> /eschat/?"
>>
>> I would assume that Virtual agent would share the configuration of IIS
>> (Mid tier config) however it doesn't appear so.
>>
>> The mid tier pages are all working great.
>>
>> really interested if anyone has gotten this working or for any advice.
>>
>> Thanks in advance.
>> Brad
>>
>>
>> _ARSlist: "Where the Answers Are" and have been for 20 years_
>>
>>
>> ___
>> UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
>> "Where the Answers Are, and have been for 20 years"
>>
> _ARSlist: "Where the Answers Are" and have been for 20 years_

___
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
"Where the Answers Are, and have been for 20 years"

Re: Virtual Agent + IIS and HTTPS

[Jason Miller]

We had a SSL issue with VA 7.0 or 7.1 (before BMC bought it). I am not sure
how much if any of the code is the same these days?

The Java code within VA was very picky about certificates and having a
completely valid certificate chain. Our configuration is Apache web server
(httpd) which is a proxy to Tomcat using AJP.

As a refresher I just looked at the document I created for my team on the
issue:

Issue:
CNS events updates are not being received and chat DVF fields are not
updating with new entries when CNS web server is using Extended Validation
certificates for SSL

Cause:
Apache web server did not have the Intermediate CA Certificate chain
configured.  Java (used by CNS) could not validate the certificate chain
therefore failing to make the connection.

Resolution Summary:
Download Intermediate CA Certificates from VeriSign and configure Apache
utilize the certificate file.


On Tue, Aug 23, 2016 at 7:02 AM Stone, Brian  wrote:

> If you are running a version older than 9.x there was an issue with Https
> and self signed certs.
>
> 
> From: Action Request System discussion list(ARSList) [arslist@ARSLIST.ORG]
> on behalf of BradRemedy [bradrem...@gmail.com]
> Sent: Tuesday, August 23, 2016 9:17 AM
> To: arslist@ARSLIST.ORG
> Subject: Virtual Agent + IIS and HTTPS
>
> **
> Hi
>
> Need some urgent help please.
>
> Has anyone been successful in getting Virtual agent to work with HTTPS ?
>
> Our mid tier server is running IIS and Apache (standard configuration)
> with a SSL cert binded to HTTPS. We have installed Virtual Agent and
> specified HTTPS as the protocol with port 443. The installation completed
> with no errors however, when we try to access Virtual agent, we get a error
> message.
>
> For testing, I am using the URL we are using is "https://
> /eschat/?"
>
> I would assume that Virtual agent would share the configuration of IIS
> (Mid tier config) however it doesn't appear so.
>
> The mid tier pages are all working great.
>
> really interested if anyone has gotten this working or for any advice.
>
> Thanks in advance.
> Brad
>
>
> _ARSlist: "Where the Answers Are" and have been for 20 years_
>
>
> ___
> UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
> "Where the Answers Are, and have been for 20 years"
>

___
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
"Where the Answers Are, and have been for 20 years"

Re: Virtual Agent + IIS and HTTPS

[Pierson, Shawn]

I would suggest not involving IIS at all if you can help it.  I struggled to 
get Openfire loading from Smart IT for weeks of webex sessions with BMC support 
and we finally got it kind of working, but then it stopped again.  I never 
tried getting the virtual agent up and running but I assume it’s going to run 
into similar issues with the certificates.

Thanks,

Shawn Pierson
Remedy Developer | Energy Transfer

From: Action Request System discussion list(ARSList) 
[mailto:arslist@ARSLIST.ORG] On Behalf Of BradRemedy
Sent: Tuesday, August 23, 2016 8:18 AM
To: arslist@ARSLIST.ORG
Subject: Virtual Agent + IIS and HTTPS

**
Hi

Need some urgent help please.

Has anyone been successful in getting Virtual agent to work with HTTPS ?

Our mid tier server is running IIS and Apache (standard configuration) with a 
SSL cert binded to HTTPS. We have installed Virtual Agent and specified HTTPS 
as the protocol with port 443. The installation completed with no errors 
however, when we try to access Virtual agent, we get a error message.

For testing, I am using the URL we are using is 
"https:///eschat/?"

I would assume that Virtual agent would share the configuration of IIS (Mid 
tier config) however it doesn't appear so.

The mid tier pages are all working great.

really interested if anyone has gotten this working or for any advice.

Thanks in advance.
Brad


_ARSlist: "Where the Answers Are" and have been for 20 years_
Private and confidential as detailed 
here. If you cannot access 
hyperlink, please e-mail sender.

___
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
"Where the Answers Are, and have been for 20 years"

Re: Virtual Agent + IIS and HTTPS

[Stone, Brian]

If you are running a version older than 9.x there was an issue with Https and 
self signed certs.


From: Action Request System discussion list(ARSList) [arslist@ARSLIST.ORG] on 
behalf of BradRemedy [bradrem...@gmail.com]
Sent: Tuesday, August 23, 2016 9:17 AM
To: arslist@ARSLIST.ORG
Subject: Virtual Agent + IIS and HTTPS

**
Hi

Need some urgent help please.

Has anyone been successful in getting Virtual agent to work with HTTPS ?

Our mid tier server is running IIS and Apache (standard configuration) with a 
SSL cert binded to HTTPS. We have installed Virtual Agent and specified HTTPS 
as the protocol with port 443. The installation completed with no errors 
however, when we try to access Virtual agent, we get a error message.

For testing, I am using the URL we are using is "https:///eschat/?"

I would assume that Virtual agent would share the configuration of IIS (Mid 
tier config) however it doesn't appear so.

The mid tier pages are all working great.

really interested if anyone has gotten this working or for any advice.

Thanks in advance.
Brad


_ARSlist: "Where the Answers Are" and have been for 20 years_

___
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
"Where the Answers Are, and have been for 20 years"